CVE-2024-25103

MEDIUM

AppSamvid Software <= 2.0.1 - DLL Hijacking via Untrusted Search Path

Title source: llm

Description

This vulnerability exists in AppSamvid software due to the usage of vulnerable and outdated components. An attacker with local administrative privileges could exploit this by placing malicious DLLs on the targeted system. Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code on the targeted system.

References (1)

Core 1

Core References

Various Sources

https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0081

Scores

CVSS v3 6.3

EPSS 0.0018

EPSS Percentile 7.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-426

Status published

Products (1)

CDAC/AppSamvid Software <=2.0.1

Published Mar 06, 2024

Tracked Since Feb 18, 2026